The maiden edition of the Auto Tech Review Conference on Automotive Functional Safety & Security (CAFSS) was organised on November 21, 2017 with experts from across the automotive value chain sharing their concerns and solutions to create safe, secure and workable mobility solutions for the present and future. The conference deliberated on the theme “An integrated approach to functional safety & cyber security in India”.
It was on June 20, 2014 that Auto Tech Review had organised – for the first time in India – a daylong conference on “Functional Safety Standard – ISO 26262”. While the industry then wasn’t quite prepared to deal with the subject, the present situation is much different – with almost every stakeholder building capabilities in-house to ensure they are prepared to meet any future regulations around safety and security.
Inaugurating the conference, Tarun Aggarwal, VP (Engineering), Maruti Suzuki India Ltd highlighted the need for better functional safety measures in vehicles across segments. There is a need to have an integrated approach in implementing functional safety measures, he said. With a growing demand for connected cars, automakers must ensure that any data going into the system does not end up being misused or manipulated. While connected car technology and ADAS are being rapidly lapped up in global markets, the large number of vehicles on Indian roads might make it difficult to monitor the enormous volume of data being generated, Aggarwal said.
Harping on the need for error-free technology adoption, Shinto Joseph, Director – South East Asia Operations, LDRA Technology, said, “Traditionally, many of the hardware and hardware systems controlled by embedded software have not been easily interfaced with, as they had little need to be exposed. Trends like machine-to-machine (M2M) communication, IoT and remotely-controlled industrial systems, and autonomous cars, however, have increased the number of connected devices and simultaneously made these devices targets.”
Addressing the inaugural session, Pamela Tikku, Senior General Manager, iCAT appreciated the work the industry has been doing in these areas. But considering these are new subjects for the sector, she called for further engagement among players in the sector to ensure solutions are robust and far reaching.
The first session was on the implementation of ISO 26262 for automotive functional safety. Speakers in this session included domain experts from Mahindra and Mahindra, Bosch, Renesas Electronics and ANSYS. All the speakers primarily highlighted the key procedures one needs to follow in being compliant to ISO 26262 standard. Rapid advancement and complexity towards automotive electronics, like driver assistance functions, vehicle dynamics control, active & passive systems, and the increased probability of systematic and random hardware failures in modern automobiles makes ISO 26262 an obligatory feature, they observed.
To ensure a secured environment for vehicles to operate, it is important for the automotive software to comply with functional safety guidelines. Sharing his thoughts on the same, Shrikant Satyanarayan, Technical Manager, LDRA India, mentioned that ISO 26262 starts with the management of functional safety phase, which consist of overall safety management, safety management during item development and safety management after release for production.
“In safety management during item development, safety management roles, responsibilities, and the definition of the requirements on the safety management development phases are developed,” added Satyanarayan. One of the challenges for coding standard adherence is to reduce the verification cost and apply the consistent coding style across team. The enforcement is primarily responsible for achieving security and safety of the software.
Raghavendra Bhat, Technical Consultant, ANSYS India said that identification and mitigation of operational risks depends on the system safety concept, which calls for a risk management strategy based on the identification, analysis of hazards and application of remedial controls using a systems-based approach. “The problem lies in coping with large amounts of the data generated. Also, maintaining consistency of data is equally important as traceability has to be created manually,” he added.
To address these challenges, Bhat said that it is important to focus on models as core database for development, design and analysis. Dedicated modelling and analysis tools must be provided to enable the validation of the models. The final measure is to ensure a feedback path from the analysis models back into the requirements and design models.
The second session on cyber security addressed data theft and hacking, and the corrective measures required. Chris Tapp, Chairman – MISRA C++ Working Group & Technical Consultant, LDRA UK said that the efficient achievement of functional safety objectives requires a formalised, requirements-driven software development process (SDP). Many international standards like ISO 26262 require the use of an SDP, he said.
Reiterating the importance of SDP, Tapp said that it allows experienced engineers to review the final requirements to ensure that they are complete and unambiguous. It further allows formal testing to be introduced to prove that the security and safety requirements of the system have been satisfied. To address security threats in vehicles of the future Tapp said that security related projects need to adopt the techniques that are proven to be effective at producing ‘good’ code. “A lower number of residual defects will be present if a coding standard is enforced within the framework of a robust software development process,” he said.
Shashwat Raizada, Expert – Cyber Security, Robert Bosch spoke about the importance of risk management from product conception to the destruction phase in the current scenario. Security as a process requires prevention, detection and apt response. It has become imperative to identify the potential paths that attacker may employ to lead to top level threat, he noted.
The other notable speaker in the session on cybersecurity was Arun Devaraj, Head – Customer Regional Engineering India, Visteon Corporation. Incidentally, Visteon has set-up a Centre for Cyber Security Testing in India, thus becoming one of the first companies in the world to have that kind of capability.
The final speaker in this session was Utsav Mittal, Principal Consultant, Xiarch Solutions. As vehicles become more networked, data management will become a critical component right from the conceptualisation stage. Auto makers need to understand the seriousness of having networked car components and take security measures accordingly. “These security flaws are growing in seriousness as cars automate more and more things. With the emergence of Bluetooth connected ECUs, this is a serious security issue that cannot be ignored any longer,” he added.
The concluding panel discussion on automotive safety & security had industry leaders discuss the importance of achieving coherence between the hardware and software elements going into an automotive set-up. While ensuring a 100 % secure and risk-free ecosystem might not be achieved, efficient data monitoring and employment of correct security tools will go a long way in mitigating cyber-crimes and potential threats.
Considering the response and interest it generated, Auto Tech Review plans to make this conference an annual feature in its calendar, involving many other stakeholders such as the telecom sector, engineering services sector, white hat hackers and the government. Auto Tech Review would also like to place on record its deep appreciation to LDRA, iCAT, ANSYS and Renesas for the support it offered in organising the 1st edition of CAFSS.